Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/LbOO595PAkfTBf8QewN-jjqmwKE.roa
File: LbOO595PAkfTBf8QewN-jjqmwKE.roa (raw, json)
Hash identifier: 4vbYwEhlcjX2LhECh9MBZYlsvRYVicnCN8d1HLV+n5U=
Subject key identifier: 2D:B3:8E:E7:DE:4F:02:47:D3:05:FF:10:7B:03:7E:8E:3A:A6:C0:A1
Certificate issuer: /CN=5588f197f97e8900755544e810cddef9d90fbc41
Certificate serial: 019302D6A330E41C7561B39C4483226A8844
Authority key identifier: 55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/LbOO595PAkfTBf8QewN-jjqmwKE.roa
Signing time: Wed 06 Nov 2024 18:57:21 +0000
ROA not before: Wed 06 Nov 2024 18:57:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 393427
IP address blocks: 46.3.190.0/24 maxlen: 24
46.3.191.0/24 maxlen: 24
46.3.200.0/24 maxlen: 24
46.3.250.0/24 maxlen: 24
46.3.252.0/24 maxlen: 24
46.232.67.0/24 maxlen: 24
46.232.69.0/24 maxlen: 24
46.232.71.0/24 maxlen: 24
46.232.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 21:11:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:02:d6:a3:30:e4:1c:75:61:b3:9c:44:83:22:6a:88:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5588f197f97e8900755544e810cddef9d90fbc41
Validity
Not Before: Nov 6 18:57:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2db38ee7de4f0247d305ff107b037e8e3aa6c0a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7e:08:2c:b5:be:b1:c4:8b:79:76:d6:20:d9:
0a:bd:5b:bf:7e:a6:dd:92:75:0d:ad:b1:db:7e:57:
8c:65:4d:8e:43:98:eb:ae:0c:bc:37:74:cd:9c:52:
8d:c3:f4:98:85:77:c0:0e:bf:6f:1d:5f:f1:d9:54:
20:e6:82:f5:54:29:d0:fb:de:1e:fd:e1:d7:bc:36:
6e:7c:7e:e9:90:5c:08:6f:49:27:ec:f4:2a:3a:94:
19:76:95:69:47:f5:26:05:07:bd:1d:3c:44:62:43:
3d:bc:e8:a8:ca:9a:f5:2b:0b:06:d3:85:00:18:77:
78:5d:2f:33:85:3b:dd:20:c5:fa:47:a4:00:60:fb:
50:2e:ff:6c:82:21:69:37:63:4b:70:4e:9a:b2:f7:
49:60:f2:96:4c:02:70:82:2e:1b:15:4a:ba:78:a7:
5d:5e:c7:dc:1a:1d:b5:d5:47:2e:aa:3f:b4:ab:fd:
be:b5:e8:a3:fe:20:7e:1f:d5:8c:e9:d8:38:3d:cb:
bd:9e:2c:9e:d1:26:bc:9e:16:cb:ba:b6:38:03:e8:
6b:c0:5f:0b:3e:e1:55:aa:28:49:e1:cd:2e:0c:83:
98:56:8f:49:81:95:e2:b7:af:2e:50:00:fc:26:41:
6b:48:e2:56:53:8e:95:87:03:40:36:07:fa:5c:eb:
79:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B3:8E:E7:DE:4F:02:47:D3:05:FF:10:7B:03:7E:8E:3A:A6:C0:A1
X509v3 Authority Key Identifier:
keyid:55:88:F1:97:F9:7E:89:00:75:55:44:E8:10:CD:DE:F9:D9:0F:BC:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYjxl_l-iQB1VUToEM3e-dkPvEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/LbOO595PAkfTBf8QewN-jjqmwKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/622981-9650-4271-92ca-7cfef4276a0f/1/VYjxl_l-iQB1VUToEM3e-dkPvEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.3.190.0/23
46.3.200.0/24
46.3.250.0/24
46.3.252.0/24
46.232.67.0/24
46.232.69.0/24
46.232.71.0-46.232.72.255
Signature Algorithm: sha256WithRSAEncryption
93:a9:3e:5c:8e:07:5c:a7:84:e5:31:d6:ff:db:de:bb:79:f6:
be:e2:e9:83:0c:49:1f:15:b1:ef:35:f2:9d:59:20:c5:6d:d5:
d2:89:fa:7e:6b:a5:38:6e:1e:32:75:b4:df:da:7e:51:c7:6a:
4b:71:96:6e:29:d5:c3:88:95:6a:7e:02:d1:07:cb:e0:1b:58:
73:97:bf:56:53:98:69:70:49:85:33:05:15:7e:7f:56:e9:a4:
94:ac:6f:ca:6e:b2:41:c8:8a:8f:e8:ac:01:15:80:61:2c:fa:
83:9b:a9:d0:ce:6b:18:fa:4c:35:33:d0:b2:b9:c7:22:e7:6f:
47:52:f4:2f:2f:cc:74:4e:00:8e:fe:f0:47:64:11:3c:70:d3:
44:8e:b3:e8:1d:88:59:2e:d0:c1:19:ad:f7:fa:1a:32:66:cf:
58:e4:96:11:b0:67:1c:a9:9a:d3:07:7d:84:b3:8b:13:9d:f1:
bf:d9:c8:8f:76:e5:12:de:b4:4c:c6:ec:11:e4:34:e6:ef:30:
21:e0:e2:1b:b6:6d:6f:e7:e0:2d:7b:86:e9:4d:20:f1:5e:6f:
42:5c:f0:21:ad:0b:ab:69:df:44:7e:9b:d1:53:9a:b9:e3:49:
c9:6b:16:fa:81:60:28:cb:64:01:79:85:3c:64:81:cc:66:91:
c0:28:2d:d3
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgISAZMC1qMw5Bx1YbOcRIMiaohEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1ODhmMTk3Zjk3ZTg5MDA3NTU1NDRlODEwY2RkZWY5ZDkw
ZmJjNDEwHhcNMjQxMTA2MTg1NzIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGIzOGVlN2RlNGYwMjQ3ZDMwNWZmMTA3YjAzN2U4ZTNhYTZjMGExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzn4ILLW+scSLeXbWINkKvVu/fqbd
knUNrbHbfleMZU2OQ5jrrgy8N3TNnFKNw/SYhXfADr9vHV/x2VQg5oL1VCnQ+94e
/eHXvDZufH7pkFwIb0kn7PQqOpQZdpVpR/UmBQe9HTxEYkM9vOioypr1KwsG04UA
GHd4XS8zhTvdIMX6R6QAYPtQLv9sgiFpN2NLcE6asvdJYPKWTAJwgi4bFUq6eKdd
XsfcGh211Ucuqj+0q/2+teij/iB+H9WM6dg4Pcu9niye0Sa8nhbLurY4A+hrwF8L
PuFVqihJ4c0uDIOYVo9JgZXit68uUAD8JkFrSOJWU46VhwNANgf6XOt5gQIDAQAB
o4ICNTCCAjEwHQYDVR0OBBYEFC2zjufeTwJH0wX/EHsDfo46psChMB8GA1UdIwQY
MBaAFFWI8Zf5fokAdVVE6BDN3vnZD7xBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2Et
N2NmZWY0Mjc2YTBmLzEvTGJPTzU5NVBBa2ZUQmY4UWV3Ti1qanFtd0tFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi82MjI5ODEtOTY1MC00MjcxLTkyY2EtN2NmZWY0Mjc2YTBm
LzEvVllqeGxfbC1pUUIxVlVUb0VNM2UtZGtQdkVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQBLgO+AwQA
LgPIAwQALgP6AwQALgP8AwQALuhDAwQALuhFMAwDBAAu6EcDBAAu6EgwDQYJKoZI
hvcNAQELBQADggEBAJOpPlyOB1ynhOUx1v/b3rt59r7i6YMMSR8Vse818p1ZIMVt
1dKJ+n5rpThuHjJ1tN/aflHHaktxlm4p1cOIlWp+AtEHy+AbWHOXv1ZTmGlwSYUz
BRV+f1bppJSsb8puskHIio/orAEVgGEs+oObqdDOaxj6TDUz0LK5xyLnb0dS9C8v
zHROAI7+8EdkETxw00SOs+gdiFku0MEZrff6GjJmz1jklhGwZxypmtMHfYSzixOd
8b/ZyI925RLetEzG7BHkNObvMCHg4hu2bW/n4C17hulNIPFeb0Jc8CGtC6tp30R+
m9FTmrnjSclrFvqBYCjLZAF5hTxkgcxmkcAoLdM=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:33 2025 by rpki-client